The dhcp snooping user-bind http https load command configures the device to obtain and restore backup DHCP snooping binding entries on the remote HTTP or HTTPS server.
dhcp snooping user-bind http load { remotefilename filename host-ip ip-address [ port port-number ] | url url-string } [ username username password password ]
dhcp snooping user-bind https ssl-policy ssl-policy-name load { remotefilename filename host-ip ip-address [ port port-number ] | url url-string } [ username username password password ]
| Parameter | Description | Value |
|---|---|---|
| ssl-policy ssl-policy-name | Specifies the name of the SSL policy used by the HTTPS protocol. |
The value is a string of 1 to 23 case-insensitive characters without spaces. The value can contain digits, letters, and underscores (_). |
| remotefilename filename | Specifies the name of the file from which the device obtains DHCP snooping binding entries. |
The value is a string of 1 to 64 characters without spaces. The string cannot contain the following characters: ~ * \ | : " ? < >. |
| host-ip ip-address | Specifies the IP address of the HTTP or HTTPS server. |
The value is in dotted decimal notation. |
| port port-number | Specifies the port number of the HTTP or HTTPS server. |
The value is an integer that ranges from 1 to 65535. |
| url url-string | Specifies the URL of the HTTP or HTTPS server, in the format http://server_location/file_location, for example, http://10.1.1.1:70/32768snp.txt. |
The value is a string of 1 to 200 case-sensitive characters without spaces. |
| username username | Specifies the user name to connect to the HTTP or HTTPS server. |
The value is a string of 1 to 64 characters without spaces. |
| password password | Specifies the password to connect to the HTTP or HTTPS server. |
The value is a string of characters without spaces. It can be a ciphertext password of 48 characters or a plaintext password of 1 to 16 characters. NOTE:
For security purposes, it is recommended that the password contains at least two types of lowercase letters, uppercase letters, numerals, and special characters, and contains at least 6 characters. |
Usage Scenario
After running the dhcp snooping user-bind http https command to enable the device to automatically back up DHCP snooping binding entries on the remote HTTP or HTTPS server, you can run the dhcp snooping user-bind http https load command to configure the device to obtain and restore backup DHCP snooping binding entries on the remote HTTP or HTTPS server.
Prerequisites
DHCP snooping has been enabled using the dhcp snooping enable command.
Precautions
The HTTP protocol will bring risk to device security. The HTTPS protocol is recommended for file operations.
# Configure the device to obtain and restore backup DHCP snooping binding entries from the backup file on the remote HTTP server at 10.1.1.1 with the HTTP user name huawei and password Huawei@123.
<HUAWEI> system-view [HUAWEI] dhcp snooping enable [HUAWEI] dhcp snooping user-bind http load remotefilename backup host-ip 10.1.1.1 username huawei password Huawei@123 Info: Downloading the file from the remote HTTP server. Please wait...done. Total number of dynamic binding table in remote file: 10 Recovering dynamic binding table, please wait for a moment.... 10 successful, 0 failed. Binding Collisions : 0 Exceeds max limit : 0 Invalid interfaces : 0 Invalid vlan : 0 Snooping not enable : 0 Lease expired : 0 Parse failures : 0
<HUAWEI> system-view [HUAWEI] dhcp snooping enable [HUAWEI] dhcp snooping user-bind https ssl-policy s1 load remotefilename backup host-ip 10.1.1.1 username huawei password Huawei@123 Info: Downloading the file from the remote HTTPS server. Please wait...done. Total number of dynamic binding table in remote file: 10 Recovering dynamic binding table, please wait for a moment.... 10 successful, 0 failed. Binding Collisions : 0 Exceeds max limit : 0 Invalid interfaces : 0 Invalid vlan : 0 Snooping not enable : 0 Lease expired : 0 Parse failures : 0
Item |
Description |
|---|---|
| Total number of dynamic binding table in remote file | Number of DHCP snooping binding entries stored on the remote server. |
| m successful, n failed | m DHCP snooping binding entries are recovered successfully, and n DHCP snooping binding entries fail to be recovered. |
| Binding Collisions | Number of DHCP snooping binding entries that cannot be restored because of collision between local entries and remote entries. |
| Exceeds max limit | Number of DHCP snooping binding entries that cannot be restored because the number of local entries reaches the upper limit. |
| Invalid interfaces | Number of DHCP snooping binding entries that cannot be restored because the local interface becomes invalid, for example, Down. |
| Invalid vlan | Number of DHCP snooping binding entries that cannot be restored because the VLAN on local device becomes invalid, for example, unavailable VLAN. |
| Snooping not enable | Number of DHCP snooping binding entries that cannot be restored because the DHCP snooping function is not enabled. |
| Lease expired | Number of DHCP snooping binding entries that cannot be restored because the lease of DHCP snooping binding table expires. |
| Parse failures | Number of DHCP snooping binding entries that cannot be restored because the device fails to parse the binding table file. |